Delete user related oauth stuff on user deletion too (#19677)

* delete user related oauth stuff on user deletion too * extend doctor check-db-consistency
2022-05-11 13:16:35 +02:00 · 2022-05-11 13:16:35 +02:00 · f41c2bec4c
commit f41c2bec4c
parent cbd45471b1
3 changed files with 34 additions and 0 deletions
--- a/models/auth/oauth2.go
+++ b/models/auth/oauth2.go
@ -5,6 +5,7 @@
 package auth

 import (
+	"context"
 	"crypto/sha256"
 	"encoding/base32"
 	"encoding/base64"
@ -18,6 +19,7 @@ import (

 	uuid "github.com/google/uuid"
 	"golang.org/x/crypto/bcrypt"
+	"xorm.io/builder"
 	"xorm.io/xorm"
 )

@ -576,3 +578,21 @@ func GetActiveOAuth2SourceByName(name string) (*Source, error) {

 	return authSource, nil
 }
+
+func DeleteOAuth2RelictsByUserID(ctx context.Context, userID int64) error {
+	deleteCond := builder.Select("id").From("oauth2_grant").Where(builder.Eq{"oauth2_grant.user_id": userID})
+
+	if _, err := db.GetEngine(ctx).In("grant_id", deleteCond).
+		Delete(&OAuth2AuthorizationCode{}); err != nil {
+		return err
+	}
+
+	if err := db.DeleteBeans(ctx,
+		&OAuth2Application{UID: userID},
+		&OAuth2Grant{UserID: userID},
+	); err != nil {
+		return fmt.Errorf("DeleteBeans: %v", err)
+	}
+
+	return nil
+}